L6 - Detecting and Preventing Threats Flashcards
What is penetration testing?
‘Pen’ testing is the practice of deliberately finding security holes in your own systems.
What is modular testing?
A software system is broken down into separate modules.
Code reviews should be carried out on new systems.
Each module or part of the system needs to be separately tested for effective protection from security breaches.
Programmers need to be aware of the possible consequences of bad programming practices.
What is plenary testing?
Penetration testing, ethical hacking and analysis tools such as audit trails can identify system vulnerabilities.
Software systems can be protected from cyber attacks using audit trails, code reviews and modular testing.
Grey hat hackers:
Grey-hats fall somewhere in between black and white hats.
Grey hats will frequently seek out system vulnerabilities without authorisation from the system owners.